Practical write-ups on breaches, vulnerabilities, and defensive security.
A Symantec/Broadcom threat-intelligence report details a five-month espionage campaign against a senior executive at a major global stock exchange. Attackers maintained access from October 2025 to March 2026, exfiltrating mailbox data in small batches through personal cloud services while hiding malware inside legitimate-looking Adobe, OneDrive, and Lenovo software components.
Read articleSecurity researchers at Silent Push published research on DriveSurge, a malware delivery operation using compromised legitimate websites to push fake browser updates and ClickFix-style attacks. The campaign uses clipboard hijacking to trick macOS users into pasting and running malicious commands in Terminal, bypassing browser security entirely by exploiting user trust and habit.
Read articleStarting July 2026, Cisco will move from monthly vulnerability disclosures to twice-monthly releases on the first and third Wednesdays of each month, citing AI-accelerated vulnerability discovery. The change raises practical questions for security teams and harder ones for the industry: is faster disclosure the answer, or does the real problem sit upstream in how software is built?
Read article
